KEY TAKEAWAYS:
- OneKey hardware wallets utilize EAL6+ secure elements to ensure high-quality randomness in seed phrase generation.
- The devices combine multiple entropy sources, including hardware-based true random number generators (TRNGs) and environmental noise.
- EAL6+ certification, one of the highest levels of security evaluation, reflects the robustness of OneKey’s security measures.
In the world of cryptocurrencies, the randomness of seed phrases is fundamental for the security of your digital assets. OneKey hardware wallets, equipped with EAL6+ secure elements, take every measure to ensure the seed phrases generated are as random and secure as possible. Here, we delve into the technology and processes behind this assurance.
The importance of randomness
Seed phrases (or mnemonic phrases) are the cornerstone of cryptocurrency security. These phrases are generated from a combination of words following the BIP-39 standard, which deterministically derives your wallet's private keys. If the process that generates these seed phrases isn't truly random, it opens doors for potential attacks, making it easier for malicious actors to predict or crack the seed.
EAL6+ Secure Elements
EAL6+ (Evaluation Assurance Level 6+) refers to one of the highest levels of security certification awarded under the Common Criteria for Information Technology Security Evaluation (CC). This certification ensures:
- Hardware-Based TRNGs: These generators use electronic noise to produce random numbers. The inherent unpredictability of electronic noise ensures a high level of randomness.
- Mixing Entropy Sources: OneKey devices may also incorporate ambient environmental noise (such as temperature variations or clock jitter) into the entropy pool to further enhance randomness.
Security Benefits
Implementing EAL6+ secure elements within OneKey hardware wallets provides numerous security benefits:
- Resistance to Predictive Attacks: High-quality randomness makes it nearly impossible for attackers to predict seed phrases through computational means.
- Protection Against Tampering: EAL6+ components are designed to detect and resist physical tampering, protecting the integrity of the TRNGs.
- Compliance with Best Practices: Adhering to industry standards and undergoing rigorous evaluation processes ensures OneKey remains compliant with the best security practices.